tor/src/or/connection_edge.h

/* Copyright (c) 2001 Matej Pfajfar.
 * Copyright (c) 2001-2004, Roger Dingledine.
 * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
 * Copyright (c) 2007-2012, The Tor Project, Inc. */
/* See LICENSE for licensing information */

/**
 * \file connection_edge.h
 * \brief Header file for connection_edge.c.
 **/

#ifndef _TOR_CONNECTION_EDGE_H
#define _TOR_CONNECTION_EDGE_H

#define connection_mark_unattached_ap(conn, endreason) \
  _connection_mark_unattached_ap((conn), (endreason), __LINE__, _SHORT_FILE_)

void _connection_mark_unattached_ap(entry_connection_t *conn, int endreason,
                                    int line, const char *file);
int connection_edge_reached_eof(edge_connection_t *conn);
int connection_edge_process_inbuf(edge_connection_t *conn,
                                  int package_partial);
int connection_edge_destroy(circid_t circ_id, edge_connection_t *conn);
int connection_edge_end(edge_connection_t *conn, uint8_t reason);
int connection_edge_end_errno(edge_connection_t *conn);
int connection_edge_flushed_some(edge_connection_t *conn);
int connection_edge_finished_flushing(edge_connection_t *conn);
int connection_edge_finished_connecting(edge_connection_t *conn);

void connection_ap_about_to_close(entry_connection_t *edge_conn);
void connection_exit_about_to_close(edge_connection_t *edge_conn);

int connection_ap_handshake_send_begin(entry_connection_t *ap_conn);
int connection_ap_handshake_send_resolve(entry_connection_t *ap_conn);

entry_connection_t  *connection_ap_make_link(connection_t *partner,
                                            char *address, uint16_t port,
                                            const char *digest,
                                            int session_group,
                                            int isolation_flags,
                                            int use_begindir, int want_onehop);
void connection_ap_handshake_socks_reply(entry_connection_t *conn, char *reply,
                                         size_t replylen,
                                         int endreason);
void connection_ap_handshake_socks_resolved(entry_connection_t *conn,
                                            int answer_type,
                                            size_t answer_len,
                                            const uint8_t *answer,
                                            int ttl,
                                            time_t expires);

int connection_exit_begin_conn(cell_t *cell, circuit_t *circ);
int connection_exit_begin_resolve(cell_t *cell, or_circuit_t *circ);
void connection_exit_connect(edge_connection_t *conn);
int connection_edge_is_rendezvous_stream(edge_connection_t *conn);
int connection_ap_can_use_exit(const entry_connection_t *conn,
                               const node_t *exit);
void connection_ap_expire_beginning(void);
void connection_ap_attach_pending(void);
void connection_ap_fail_onehop(const char *failed_digest,
                               cpath_build_state_t *build_state);
void circuit_discard_optional_exit_enclaves(extend_info_t *info);
int connection_ap_detach_retriable(entry_connection_t *conn,
                                   origin_circuit_t *circ,
                                   int reason);
int connection_ap_process_transparent(entry_connection_t *conn);

int address_is_invalid_destination(const char *address, int client);

void addressmap_init(void);
void addressmap_clear_excluded_trackexithosts(const or_options_t *options);
void addressmap_clear_invalid_automaps(const or_options_t *options);
void addressmap_clean(time_t now);
void addressmap_clear_configured(void);
void addressmap_clear_transient(void);
void addressmap_free_all(void);
int addressmap_rewrite(char *address, size_t maxlen, time_t *expires_out,
                       addressmap_entry_source_t *exit_source_out);
int addressmap_have_mapping(const char *address, int update_timeout);

void addressmap_register(const char *address, char *new_address,
                         time_t expires, addressmap_entry_source_t source,
                         const int address_wildcard,
                         const int new_address_wildcard);
int parse_virtual_addr_network(const char *val, int validate_only,
                               char **msg);
int client_dns_incr_failures(const char *address);
void client_dns_clear_failures(const char *address);
void client_dns_set_addressmap(const char *address, uint32_t val,
                               const char *exitname, int ttl);
const char *addressmap_register_virtual_address(int type, char *new_address);
void addressmap_get_mappings(smartlist_t *sl, time_t min_expires,
                             time_t max_expires, int want_expiry);
int connection_ap_rewrite_and_attach_if_allowed(entry_connection_t *conn,
                                                origin_circuit_t *circ,
                                                crypt_path_t *cpath);
int connection_ap_handshake_rewrite_and_attach(entry_connection_t *conn,
                                               origin_circuit_t *circ,
                                               crypt_path_t *cpath);

/** Possible return values for parse_extended_hostname. */
typedef enum hostname_type_t {
  NORMAL_HOSTNAME, ONION_HOSTNAME, EXIT_HOSTNAME, BAD_HOSTNAME
} hostname_type_t;
hostname_type_t parse_extended_hostname(char *address);

#if defined(HAVE_NET_IF_H) && defined(HAVE_NET_PFVAR_H)
int get_pf_socket(void);
#endif

int connection_edge_compatible_with_circuit(const entry_connection_t *conn,
                                            const origin_circuit_t *circ);
int connection_edge_update_circuit_isolation(const entry_connection_t *conn,
                                             origin_circuit_t *circ,
                                             int dry_run);
void circuit_clear_isolation(origin_circuit_t *circ);

#endif
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`/* Copyright (c) 2001 Matej Pfajfar.`
			`* Copyright (c) 2001-2004, Roger Dingledine.`
			`* Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.`
Update copyright dates to 2012; add a few missing copyright statements 2012-06-05 02:58:17 +02:00			`* Copyright (c) 2007-2012, The Tor Project, Inc. */`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`/* See LICENSE for licensing information */`

			`/**`
			`* \file connection_edge.h`
			`* \brief Header file for connection_edge.c.`
			`**/`

			`#ifndef _TOR_CONNECTION_EDGE_H`
			`#define _TOR_CONNECTION_EDGE_H`

			`#define connection_mark_unattached_ap(conn, endreason) \`
			`_connection_mark_unattached_ap((conn), (endreason), __LINE__, _SHORT_FILE_)`

Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`void _connection_mark_unattached_ap(entry_connection_t *conn, int endreason,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int line, const char *file);`
			`int connection_edge_reached_eof(edge_connection_t *conn);`
			`int connection_edge_process_inbuf(edge_connection_t *conn,`
			`int package_partial);`
			`int connection_edge_destroy(circid_t circ_id, edge_connection_t *conn);`
			`int connection_edge_end(edge_connection_t *conn, uint8_t reason);`
			`int connection_edge_end_errno(edge_connection_t *conn);`
Consider sending stream-level SENDME cells on partial flushes. Right now, we only consider sending stream-level SENDME cells when we have completely flushed a connection_edge's outbuf, or when it sends us a DATA cell. Neither of these is ideal for throughput. This patch changes the behavior so we now call connection_edge_consider_sending_sendme when we flush _some_ data from an edge outbuf. Fix for bug 2756; bugfix on svn r152. 2011-03-14 22:48:45 +01:00			`int connection_edge_flushed_some(edge_connection_t *conn);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int connection_edge_finished_flushing(edge_connection_t *conn);`
			`int connection_edge_finished_connecting(edge_connection_t *conn);`

Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`void connection_ap_about_to_close(entry_connection_t *edge_conn);`
Split connection_about_to_close_connection into separate functions This patch does NOTHING but: - move code - add declarations and includes as needed to make the new code work - declare the new functions. 2011-06-22 19:57:19 +02:00			`void connection_exit_about_to_close(edge_connection_t *edge_conn);`

Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_ap_handshake_send_begin(entry_connection_t *ap_conn);`
			`int connection_ap_handshake_send_resolve(entry_connection_t *ap_conn);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`entry_connection_t connection_ap_make_link(connection_t partner,`
Add support for linked connections with bufferevent_pair. Also, set directory connections (linked and otherwise) to use bufferevents. Also, stop using outbuf_flushlen anywhere except for OR connections. 2009-08-11 21:16:16 +02:00			`char *address, uint16_t port,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`const char *digest,`
Implement sensible isolation for tunneled directory conns One-hop dirconn streams all share a session group, and get the ISO_SESSIONGRP flag: they may share circuits with each other and nothing else. Anonymized dirconn streams get a new internal-use-only ISO_STREAM flag: they may not share circuits with anything, including each other. 2011-07-08 21:54:30 +02:00			`int session_group,`
			`int isolation_flags,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int use_begindir, int want_onehop);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`void connection_ap_handshake_socks_reply(entry_connection_t conn, char reply,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`size_t replylen,`
			`int endreason);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`void connection_ap_handshake_socks_resolved(entry_connection_t *conn,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int answer_type,`
			`size_t answer_len,`
Merge remote branch fix_security_bug_021 into fix_security_bug_022 Conflicts: src/common/memarea.c src/or/or.h src/or/rendclient.c 2010-12-16 04:47:28 +01:00			`const uint8_t *answer,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int ttl,`
			`time_t expires);`

			`int connection_exit_begin_conn(cell_t cell, circuit_t circ);`
			`int connection_exit_begin_resolve(cell_t cell, or_circuit_t circ);`
			`void connection_exit_connect(edge_connection_t *conn);`
			`int connection_edge_is_rendezvous_stream(edge_connection_t *conn);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_ap_can_use_exit(const entry_connection_t *conn,`
Merge maint-0.2.2 for the bug1090-part1-squashed branch Resolved conflicts in: doc/tor.1.txt src/or/circuitbuild.c src/or/circuituse.c src/or/connection_edge.c src/or/connection_edge.h src/or/directory.c src/or/rendclient.c src/or/routerlist.c src/or/routerlist.h These were mostly releated to the routerinfo_t->node_t conversion. 2011-04-27 20:36:30 +02:00			`const node_t *exit);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`void connection_ap_expire_beginning(void);`
			`void connection_ap_attach_pending(void);`
			`void connection_ap_fail_onehop(const char *failed_digest,`
			`cpath_build_state_t *build_state);`
			`void circuit_discard_optional_exit_enclaves(extend_info_t *info);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_ap_detach_retriable(entry_connection_t *conn,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`origin_circuit_t *circ,`
			`int reason);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_ap_process_transparent(entry_connection_t *conn);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00
			`int address_is_invalid_destination(const char *address, int client);`

			`void addressmap_init(void);`
Make the get_options() return const This lets us make a lot of other stuff const, allows the compiler to generate (slightly) better code, and will make me get slightly fewer patches from folks who stick mutable stuff into or_options_t. const: because not every input is an output! 2011-06-14 19:01:38 +02:00			`void addressmap_clear_excluded_trackexithosts(const or_options_t *options);`
			`void addressmap_clear_invalid_automaps(const or_options_t *options);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`void addressmap_clean(time_t now);`
			`void addressmap_clear_configured(void);`
			`void addressmap_clear_transient(void);`
			`void addressmap_free_all(void);`
An attempt at bug3940 and making AllowDotExit 0 work with MapAddress This time, I follow grarpamp's suggestion and move the check for .exit+AllowDotExit 0 to the top of connection_ap_rewrite_and_attach, before any rewriting occurs. This way, .exit addresses are forbidden as they arrive from a socks connection or a DNSPort request, and not otherwise. It _is_ a little more complicated than that, though. We need to treat any .exit addresses whose source is TrackHostExits as meaning that we can retry without that exit. We also need to treat any .exit address that comes from an AutomapHostsOnResolve operation as user-provided (and thus forbidden if AllowDotExits==0), so that transitioning from AllowDotExits==1 to AllowDotExits==0 will actually turn off automapped .exit addresses. 2012-05-11 23:00:41 +02:00			`int addressmap_rewrite(char address, size_t maxlen, time_t expires_out,`
			`addressmap_entry_source_t *exit_source_out);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int addressmap_have_mapping(const char *address, int update_timeout);`

			`void addressmap_register(const char address, char new_address,`
Refactor addressmap_match_superdomains and representation of wildcards In this new representation for wildcarded addresses, there are no longer any 'magic addresses': rather, "a.b c.d", ".a.b c.d" and ".a.b .c.d" are all represented by a mapping from "a.b" to "c.d". we now distinguish them by setting bits in the addressmap_entry_t structure, where src_wildcard is set if the source address had a wildcard, and dst_wildcard is set if the target address had a wildcard. This lets the case where ".a.b .c.d" or ".a.b c.d" remap the address "a.b" get handled trivially, and lets us simplify and improve the addressmap_match_superdomains implementation: we can now have it run in O(parts of address) rather than O(entries in addressmap). 2011-09-08 17:54:24 +02:00			`time_t expires, addressmap_entry_source_t source,`
MSVC build issue: make 'const' in declaration match 'const' in definition MSVC warns if you declare a function as having a "int foo" argument and then implement it with a "const int foo" argument, even though the latter "const" is not a part of the function's interface. 2012-05-14 19:05:00 +02:00			`const int address_wildcard,`
			`const int new_address_wildcard);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`int parse_virtual_addr_network(const char *val, int validate_only,`
			`char **msg);`
			`int client_dns_incr_failures(const char *address);`
			`void client_dns_clear_failures(const char *address);`
			`void client_dns_set_addressmap(const char *address, uint32_t val,`
			`const char *exitname, int ttl);`
			`const char addressmap_register_virtual_address(int type, char new_address);`
			`void addressmap_get_mappings(smartlist_t *sl, time_t min_expires,`
			`time_t max_expires, int want_expiry);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_ap_rewrite_and_attach_if_allowed(entry_connection_t *conn,`
Ensure controller RESOLVE commands respect __LeaveStreamsUnattached https://trac.torproject.org/projects/tor/ticket/1525 "The codepath taken by the control port "RESOLVE" command to create a synthetic SOCKS resolve request isn't the same as the path taken by a real SOCKS request from 'tor-resolve'. This prevents controllers who set LeaveStreamsUnattached=1 from being able to attach RESOLVE streams to circuits of their choosing." Create a new function connection_ap_rewrite_and_attach_if_allowed() and call that when Tor needs to attach a stream to a circuit but needs to know if the controller permits it. No tests added. 2010-08-06 21:29:15 +02:00			`origin_circuit_t *circ,`
			`crypt_path_t *cpath);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_ap_handshake_rewrite_and_attach(entry_connection_t *conn,`
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`origin_circuit_t *circ,`
			`crypt_path_t *cpath);`

			`/** Possible return values for parse_extended_hostname. */`
			`typedef enum hostname_type_t {`
			`NORMAL_HOSTNAME, ONION_HOSTNAME, EXIT_HOSTNAME, BAD_HOSTNAME`
			`} hostname_type_t;`
An attempt at bug3940 and making AllowDotExit 0 work with MapAddress This time, I follow grarpamp's suggestion and move the check for .exit+AllowDotExit 0 to the top of connection_ap_rewrite_and_attach, before any rewriting occurs. This way, .exit addresses are forbidden as they arrive from a socks connection or a DNSPort request, and not otherwise. It _is_ a little more complicated than that, though. We need to treat any .exit addresses whose source is TrackHostExits as meaning that we can retry without that exit. We also need to treat any .exit address that comes from an AutomapHostsOnResolve operation as user-provided (and thus forbidden if AllowDotExits==0), so that transitioning from AllowDotExits==1 to AllowDotExits==0 will actually turn off automapped .exit addresses. 2012-05-11 23:00:41 +02:00			`hostname_type_t parse_extended_hostname(char *address);`
Create connection_edge.h 2010-07-22 10:43:02 +02:00
			`#if defined(HAVE_NET_IF_H) && defined(HAVE_NET_PFVAR_H)`
			`int get_pf_socket(void);`
			`#endif`

Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_edge_compatible_with_circuit(const entry_connection_t *conn,`
(Unused) backend logic for stream isolation This patch adds fields to track how streams should be isolated, and ensures that those fields are set correctly. It also adds fields to track what streams can go on a circuit, and adds functions to see whether a streams can go on a circuit and update the circuit accordingly. Those functions aren't yet called. 2011-07-06 22:03:47 +02:00			`const origin_circuit_t *circ);`
Move entry-only fields from edge_connection_t to entry_connection_t Also, refactor the code accordingly. 2011-07-20 18:55:42 +02:00			`int connection_edge_update_circuit_isolation(const entry_connection_t *conn,`
(Unused) backend logic for stream isolation This patch adds fields to track how streams should be isolated, and ensures that those fields are set correctly. It also adds fields to track what streams can go on a circuit, and adds functions to see whether a streams can go on a circuit and update the circuit accordingly. Those functions aren't yet called. 2011-07-06 22:03:47 +02:00			`origin_circuit_t *circ,`
			`int dry_run);`
Launch sufficient circuits to satisfy pending isolated streams Our old "do we need to launch a circuit for stream S" logic was, more or less, that if we had a pending circuit that could handle S, we didn't need to launch a new one. But now that we have streams isolated from one another, we need something stronger here: It's possible that some pending C can handle either S1 or S2, but not both. This patch reuses the existing isolation logic for a simple solution: when we decide during circuit launching that some pending C would satisfy stream S1, we "hypothetically" mark C as though S1 had been connected to it. Now if S2 is incompatible with S1, it won't be something that can attach to C, and so we'll launch a new stream. When the circuit becomes OPEN for the first time (with no streams attached to it), we reset the circuit's isolation status. I'm not too sure about this part: I wanted some way to be sure that, if all streams that would have used a circuit die before the circuit is done, the circuit can still get used. But I worry that this approach could also lead to us launching too many circuits. Careful thought needed here. 2011-07-07 16:40:23 +02:00			`void circuit_clear_isolation(origin_circuit_t *circ);`
(Unused) backend logic for stream isolation This patch adds fields to track how streams should be isolated, and ensures that those fields are set correctly. It also adds fields to track what streams can go on a circuit, and adds functions to see whether a streams can go on a circuit and update the circuit accordingly. Those functions aren't yet called. 2011-07-06 22:03:47 +02:00
Create connection_edge.h 2010-07-22 10:43:02 +02:00			`#endif`